CVE-2024-1804 | Tutor LMS Plugin up to 2.2.0 on WordPress tutor_import_from_xml authorization

Posted by Angelo Barbosa | Jul 26, 2024 | CVE

A vulnerability was found in Tutor LMS Plugin up to 2.2.0 on WordPress. It has been classified as critical. This affects the function tutor_import_from_xml. The manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2024-1804. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-1804 | Tutor LMS Plugin up to 2.2.0 on WordPress tutor_import_from_xml authorization

Related Posts

CVE-2024-25156 | Fortra GoAnywhere MFT up to 7.4.1 path traversal

CVE-2024-7356 | Zephyr Project Manager Plugin up to 3.3.100 on WordPress filename cross site scripting

CVE-2023-6301 | SourceCodester Best Courier Management System 1.0 GET Parameter parcel_list.php id cross site scripting

CVE-2023-6499 | lasTunes Plugin up to 3.6.1 on WordPress cross-site request forgery